@posthog/cli - npm Package Compare versions

Comparing version 0.5.22 to 0.5.23

CHANGELOG.md

 # posthog-cli
 
+# 0.5.23
+
+- feat: add experimental commands for endpoints management
+
 # 0.5.22
@@ -4,0 +8,0 @@

npm-shrinkwrap.json

@@ -26,3 +26,3 @@ {
       "name": "@posthog/cli",
-      "version": "0.5.22"
+      "version": "0.5.23"
     },
@@ -519,3 +519,3 @@ "node_modules/@isaacs/balanced-match": {
   "requires": true,
-  "version": "0.5.22"
+  "version": "0.5.23"
 }

package.json

 {
-  "artifactDownloadUrl": "https://github.com/PostHog/posthog/releases/download/posthog-cli-v0.5.22",
+  "artifactDownloadUrl": "https://github.com/PostHog/posthog/releases/download/posthog-cli-v0.5.23",
   "bin": {
@@ -119,3 +119,3 @@ "posthog-cli": "run-posthog-cli.js"
   },
-  "version": "0.5.22",
+  "version": "0.5.23",
   "volta": {
@@ -122,0 +122,0 @@ "node": "18.14.1",

README.md

@@ -13,2 +13,3 @@ # The Posthog CLI
   sourcemap  Upload a directory of bundled chunks to PostHog
+  exp        Contains a set of experimental commands
   help       Print this message or the help of the given subcommand(s)
@@ -27,3 +28,16 @@
 - `POSTHOG_CLI_HOST`: The PostHog host to connect to [default: https://us.posthog.com]
-- `POSTHOG_CLI_TOKEN`: [A posthog person API key.](https://posthog.com/docs/api#private-endpoint-authentication)
+- `POSTHOG_CLI_TOKEN`: [A posthog personal API key.](https://posthog.com/docs/api#private-endpoint-authentication)
 - `POSTHOG_CLI_ENV_ID`: The ID number of the project/environment to connect to. E.g. the "2" in `https://us.posthog.com/project/2`
+
+### Personal API key scopes
+
+Commands require different API scopes. Make sure to set these scopes on your personal API key:
+
+| Command                       | Required Scopes                            |
+| ----------------------------- | ------------------------------------------ |
+| `query`                       | `query:read`                               |
+| `sourcemap`                   | `error_tracking:write`                     |
+| `exp endpoints list/get/pull` | `endpoint:read`                            |
+| `exp endpoints push`          | `endpoint:write`, `insight_variable:write` |
+| `exp endpoints run`           | `query:read`                               |
+| `exp tasks`                   | `task:read`                                |

New alerts

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

AI-detected potential code anomaly

Supply chain risk

AI has identified unusual behaviors that may pose a security risk.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Fixed alerts

Shell access

Supply chain risk

This module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.

Found 1 instance in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

AI-detected potential code anomaly

Supply chain risk

AI has identified unusual behaviors that may pose a security risk.

Found 1 instance in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

37958

2.38%

Number of lines in readme file

42

50%

No dependency changes